Tag Archive
Programming Wetware: Planning for Success
Introduction Modern information security is a powerful tool with some very potent capability to deter and prevent cyber attacks on enterprise networks. Firewall, VPN, CA, multifactor authentication, IDPS, antimalware, traffic monitoring, and audits are just some of the components that are implemented by a strong security posture and are a major part of defense-in-depth strategy. [...]
Hacking with SET – Java Applet Clone
Getting back to my original subject matter – hacking – I want to cover briefly a type of attack that can be very easily performed using SET. I personally run SET (and sometimes Fast-Track) on my BT5R2 install that runs in an Oracle VM. I’m going to cover this attack and highlight – again – [...]
The Thumb Drive Threat
While some people tend to focus on the technical aspect of infosec, I often hammer on social engineering. People are the weakest link in any security policy. I can write an ACL for a router interface and the router doesn’t have a choice but to follow my instructions. One can force an employee to sign [...]
A Glimpse at Social Engineering: How big of a threat can it really be?
A Glimpse at Social Engineering: How big of a threat can it really be? One of the most frustrating things involving security policy is the lack of understanding that employees (or household members) have. People are often not only unaware of security threats, but are also often non-compliant with security policy. This isn’t because they [...]
Credit Card Information Stolen
You may have recently read my article about social engineering which demonstrated that a single individual being hacked on the network could easily lead to massive amounts of damages. Many employees simply are unaware of exactly how tenacious they must be in following security policy to prevent, or at least discourage, hackers from getting into [...]
About Kevin
Kevin Pope holds a degree in Computer Networking Technology and is continuing education in the Information Security discipline.